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(54) Software copying system 

(57) A software copying system which enables cop- 
yrighted software recorded in a master storage medium 
(1 ; 60) to be copied to a user's target storage medium 
(3; 40) in a legitimate manner, A contents identifier read- 
ing unit (2) reads out a software identifier (SIDi; DID) 
from the master storage medium (1 ; 60). while a storage 
medium identrfler reading unit (4) reads out a storage 
medium identifier (IDk: Mid) from the target storage 
medium (3; 40). The two identifiers are then sent to a 
central site (5) which manages licenses for the right to 
copy software products. Al the central site (5). a signa- 
ture generating unit (6) produces a first signature (CS) 
from those identifiers and serids it back to the user's 
site, wrtiere a signature writing unit (7) writes the 
received signature into the target storage medium (3; 
40). A signature generating/comparing unit (8) pro- 
duces a second signature (CS*) out of the same identrfi- 
ers as those sent to the central site (5), and compares it 
with the first signature (CS) stored in the target storage 
medium (3; 40). A data copying unit (9) copies the sub- 
ject software data file from the master storage medium 
(1; 60) to the target storage medium (3; 40). only when 
the first and second signatures (CS, CS*) coincide with 
each other. 
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E>esciiption 

BACKGROUND OF THE INVENTION 

1. Field of the Invention 5 

The present invention relates to software coping 
systems, and more specifically, to a software copying 
system which enables copyrighted software to be dupli- 
cated in a user's storage medium in a legitimate man- 
ner. 

2. DesoDtw of tne Related Art 

A wOe ¥9)t^f ol coftware distribution methods 
have btscunv m lecent years, and tiie con- 

sumers pi#chtt« ftdhMare products which are 
stored m aom* i/tott^ mecta such as floppy disks, 
compact fc^on^ memories (CD-ROMs), and 
semiconductor memon«6 They can also buy some soft- 
ware productL (oti a! on hn« shops by downloading via 
networks Mou c0 ujct\ conYnercial software products, 
however, can be copi«d »nto other storage media easily. 
This mearts th;ii iN»y Ar» exposed to the potential risk of 
illegal duplication, or software piracy which has become 
a serious proUem tor copyrighted softwara 

As to the software distrAxition methods for compu- 
ter applications. <ictionanes. audio and video data. etc.. 
one of the convenbonal nr^elhods is to distribute them in 
a CD-ROM that is electronically tacked by a protection 
key When a user is interested in a certain software 
product he/she makes contact with a central site that is 
dealing that product. The user then takes a necessary 
procedure to purchase H. and in turn receives a key per- 
taining to tile product. By opening the protected soft- 
ware archive with that key. the user can finally install it 
into his/her system. 

Anotiier metiiod of software distribution uses a wri- 
table storage medium that contains some license-spe- 
cific identification infomiation burned in advance, which 
information is managed at the central site for licensing 
the right to copy their software products. When trying to 
diplicate a software product recorded In a CD-ROM, a 
user or a retailer selling the storage media will send 
their request to the central site. After following some 
necessary procedures ior purchasing that subject soft- 
ware product, the requesting user or retailer receives 
identiftcation Intormation Issued by the central sHe. The 
subject software product can be duplicated from the 
CD-ROM to the storage medium, only when the 
received identification mformation coincides with the 
Itcense-specific identification Information recorded in 
the storage medium. 

But anyone can execute or make access to the soft- 
ware, once rt is installed into his/her local storage device 
such as a hard drive. This simply means that the 
installed software still is a subject of illegal duplication 
due to tiie lack of key protection. 

Furtiier, in the aforementioned second method, the 



license-related kJentif ication information should be con- 
ti-olled at the centi^ site in dose liaison with a factory 
where the storage media are manufactured. Another 
problem wrtii the storage media is tiiat it is required to 
handle two types of storage media in different ways for 
two distinct purposes: software copying and general 
use. 

SUMMARY OF THE INVENTION 

Taking the above into considmtioa an object of 
the present Invention is to provide a software copying 
system which enables copyrighted data recorded in a 
master storage medium to be copied in a legitimate 
manner to a target storage medium tiiat a user can read 
and write to. 

To accomplish tiie above object according to the 
present invention, there is provided a software copying 
system for duplicating software recorded in a master 
storage medium to a target borage medium In a legiti- 
mate manner. An autiiorized copying process is 
achieved through communications between an end 
user^ site that is requesting a license of copying the 
software product and a central site tiiat manages the 
license. 

The software copying system comprises the follow- 
ing sti'uctural elements. Contents identifier reading 
means reads out a first identifier tiie master storage 
medium. This first identifier is uniquely assigned to the 
software product recorded in the master storage 
medium. Storage medium Identifier reading means 
reads out a second identifier from tiie ^rget storage 
medium. This second identifier is uniquely assigned to 
and recorded in tiie target storage medium. Signature 
generating means, which is disposed at tiie central site, 
generates a first signature from tiie first identifier read 
out by tiie contents identifier reading means and the 
second identifier read by the storage medium identifier 
reading mearts. This first signature serves as a certifi- 
cate of a license to copy the software product Signature 
writing means writes tiie first signature generated by the 
signature generating means into the target storage 
mediura For a verrfioation purpose, signature generat- 
ing/comparing means generates a second signature 
from the first identifier read out by the contents identifier 
reading means and the second identifier read out by the 
storage medium identifier reading means. The signa- 
ture generating/comparing means then compares the 
first signature stored in the target storage medium vntii 
tiie second signature. Data copying means retiieves the 
software product out of the master storage medium and 
writes tiie software product into the target storage 
medium, when the first and second identifiers turned 
out to be identical as a result of the comparison per- 
formed by the agnature generating/comparing meana 

To acoonrplish tiie above object there is also pro- 
vided a software copying metiiod for duplicating soft- 
ware recorded in a master storage medium to a target 
storage medium in a legitimate nanner. This software 
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cops^ng method comprises the following steps. 

First, a storage medium identrfier uniquely assigned 
to the target storage medium and a contents identifier 
uniquely assigned to a subject data file are sent from an 
end user's site to a central site, together with a message 5 
requesting a software license. Second, a first certificate 
code is generated at the central site from the storage 
medium identifier and tfie contents identifier received 
from the end user site. This step is acoonrplished 
through a signature generating process using a certifi- io 
cation key that is managed at the central site. Third, an 
encrypted certification key is generated at tiie central 
site by encrypting tt)e certification key using a user key. 
Fourth, the first certificate code and the encrypted certi- 
fication key are sent from the central site to ttie end is 
users site. Fifth, the first certificate code and the 
encrypted certification key arrived at the end user's site 
from the central site is written into the target storage 
medium. Sixth, a decrypted certification key is obtained 
at the end user's site by decrypting, using the user key, 20 
the encrypted certification key stored in the target stor- 
age medium, Sevemh. a second certification code is 
generated, for the purpose of verification at the end 
user*s site, by applying a signature generating process 
using the decrypted certification key to the storage 25 
medium identifier and ttie contents kientifier. Eightii. tiie 
first certificate code stored In the target storage medium 
is compared with ttie second certificate code that is 
generated at tite end user's site. Lastly, tiie subject data 
file stored in the master storage medum is read out and 30 
written into ttie target storage medium if the first and 
second certificate codes coindde witii eac*i other. 

The above and otfier objects, features and advan- 
tages of the present invention will become apparent 
from the following description when taken in conjunction 3S 
witii ttie accornpanying drawings which illustrate a pre- 
fen-ed embodiment of tiie present invention by way of 
exanpla 

BRIEF DESCRIPTION OF TH E DRAWINGS 40 

FIG. 1 is a conc^tual view of a software oof^ing 

system aocoiding to ttie present invention; 

FIG. 2 Is a flowchart showing a sof^Aare duplication 

process executed by a software copying system in 45 

a first embodiment of ttie present invention; 

FIG. 3(A) is a diagram showing the structure of a 

CD-ROM; 

FIG, 3(B) is a diagram showing ttie structure of an 
MO disc; 50 
FIG. 4 is a diagram showing a procedure of dupli- 
cating copyrighted software: 
FIG. 5 is a diagram showing the structure of a typi- 
cal signature processor; 

FIG. 6 is a diagram showing a procedure of execut- 55 
ing a duplicated software program; 
FIG. 7 is a f bwchart showing a software duplication 
process executed by a software copying system in 
a second embodiment of the present invention; 



FIG. 8 is a diagram showing a procedure at ttie cen- 
tral site; 

FIG. 9 is a diagram showing a procedure at tiie end 
user's site; and 

FIG. 10 is a diagram showing a procedure of exe- 
cuting a duplicated software program. 

DESCRIPTION OF THE PREFERRED EMBODIMENT 

At ttie outset, the present invention will be outlined 
with reference to FIG. 1 , which shows a conceptual view 
of a software copying system according to ttie present 
invention. 

As seen in FIG. 1 , ttie software copying system of 
the present invention comprises several elements 
described below. Contents identifier reading means 2 is 
a means for reading out a first identifier stored in a mas- 
ter storage medium 1. This first identifier is uniquely 
assigned to each software product recorded in the mas- 
ter storage medium 1. Storage medium kientifier read- 
ing means 4 reads out a second identifier stored in a 
target storage medium 3. This second identifier is 
uniquely assigned to ttie target storage medium 3. Sig- 
nature generating means 6. disposed at a central site 5 
that manages licenses tor software copying, generates 
a first signatore from the first and second identifiers 
read out by the contents kientifier reading means 2 and 
storage medium kientifier reading means 4. respec- 
tively. The first signature senses as a certificate of a 
license to copy tiie software product Signature writing 
means 7 writes the first signature, which is generated by 
ttie signature generating means 6. into ttie target stor- 
age medium 3. Signature generating/conparing means 
8 produces a second signature from the first and sec- 
ond identifiers respectively read out by tiie contento 
identifier reading means 2 and storage medium identi- 
fier reading means 4. The signature generating/compar- 
ing means 8 compares ttie first signature stored in ttie 
target storage medium 3 witii tiie second signature that 
rs produced. Data copying means 9 retrieves the subject 
software product out of the master storage medium 1 
and writes rt into the target storage medium 3, when ttie 
first and second stgnatores turned out to be identical as 
a result of the comparison performed by the signature 
generating/comparing means 8. 

The master storage medium 1 contains several 
commercial software products, to each of which a con- 
tents identifier is written. The target storage medium 3 
has an tndtvkiual storage medium kientifier which is 
written at tiie factory before shipment When a user 
selects a software product from among those in the 
master storage medium 1, the contents ident'rfier read- 
ing means 2 retrieves a contents identifier correspond- 
ing to tiie selected software product, and ttien ttie 
storage medium identifier reading means 4 reads out a 
storage medium identifier recorded in tiie target storage 
medium 3. Those two identifiers are trsmsnrBtted to the 
central site 5 together witti a purchase order message 
to request a license to copy ttie subject software prod- 
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ucL At the central site 5. the signature generating 
means 6 receives the contents identifier and storage 
medium identifier and sends back to the user a signa- 
ture that is generated from the received identrf iers. This 
signature authorizes the user as a licensee having the 5 
right to cqpy the software product. Simultaneously with 
the issue of the signature, the user is registered in a 
user profile database at the central site 5, and a billing 
process is also invoked. 

At the user side, upon receipt of the signature sent 10 
from the signature generating means 6, the signature 
writing means 7 writes it into the target storage medium 
3. The signature generating/comparing means 8 then 
locally generates a signature from the contents identifier 
retrieved by the contents identifier reading means 2 and is 
the storage medium identifier retrieved by the storage 
medium identifier reading means 4. The signature gen- 
erating/comparing means 8 compares this signature 
with the first-mentioned signature stored in the target 
storage medium 3. If the two signatures coincide with 20 
each other, the data copying means 9 retrieves the sub- 
ject software product which is stored tn encrypted form, 
from the nr^er storage medium 1 and copies it into the 
target storage medium 3. The software now stored in 
the target storage medium 3. however, is not ready for ss 
execution because it is still encrypted. The user has to 
load it to ^e main memory of a special processor which 
decodes and executes the encrypted software. 

Next, a first embodiment of the present invention 
wiQ be described below with reference to FIGS. 2 to 6. 30 
The following explanation assumes such a case that a 
certain cq3yrighted software program distributed in a 
CD-ROI\A is to be copied into a magneto-opticat (MO) 
disc. 

FIG. 2 is aftowchart showing a software dupDcation 35 
process perfomied by tie software copying system To 
copy a program in a CD-ROM to an MO disc using the 
software copying system of tiie present invention, it is 
necessary to follow tiie steps of; 

40 

[S1] The storage medium identifier IDk recorded in 
the MO disc and the software identifier SfDf of the 
subject software program are sent to the central 
site which manages license for software copying. 
IS2] This request for the software license is prcc- 45 
essed at ttie central site, where a certificate code 
CS is generated from the storage medium identifier 
IDk and software identifier 3fDi received from the 
end user site. The central site tiien sends back the 
certificate code CS to tiie end user sita so 
[SSI The certificate code CS arrived at the end 
user's site is written into a predetermined storage 
region in the MO disc. 

[84] For a verification purpose, another certificate 
code CS' is generated locally at the end user*s site, ss 
based on the storage medium identSier IDk and 
software identifier S/D/, which were sent to tiie cen- 
tral site. 

[SSJ The locally generated certificate code CS' is 



compared with the other certificate code CS stored 
in the MO disc. 

[S6] According to the result of tiie conparison 
between CS and CS\ the process proceeds in dif* 
ferent ways. If tiie two certificate codes are found 
identical, the process goes to the next step 37. Oth- 
^se. tiie process is terminated witiiout copying 
tiie software program from the CD-ROM to the MO 
disc. 

[S7] An encrypted software data file having tiie soft* 
ware identifier SIDi is copied from tiie CD-ROM to 
tiie prepared MO disc. 

FIGS. 3(A) and 3(B) show the structure of records 
tn a CD-ROM and an MO disc, respectively The struc* 
ture of a CD-ROM 11 is shown in FIG. 3(A), where a 
plurality of copyrighted software programs and a man- 
ager application program MA are recorded. The copy- 
righted software programs, stored in encrypted form, 
have their respective software identifiers SIDi 
(/°1,2 n). The manager application program MA gov- 
erns tiie operations to copy tiie copyrighted software 
programs from a CD-ROM to an MO disc. Upon request 
for software copying, this program will be loaded into 
and executed on a terminal station (e.g., a personal 
computer) located at tiie end user's site That is. tiie 
manager application program MA is responsible for the 
steps executed at the end user's site as part of tiie pro- 
cedure shown in RG. 2. 

FIG. 3(B) is a diagram showing the record sb'ucture 
of the MO disc 12. where a storage medium identifier 
IDk (/f=1 .2,....m) is recorded. Atthough most part of tiie 
MO disc 1 2 can be freely written and/or read by tiie end 
users, tiie storage medium identifier IDk is written in a 
special part of the disc that is not rewritable. This stor- 
age medium identifier IDk may be a serial number 
which is assigned uniquely to each medum at tiie fac- 
tory b^ore shipment 

The following description will present a more 
detailed procedure of duplicating copyrighted software 
from a CD-ROM to an MO disc witii reference to FIG. 4. 

FIG. 4 shows a software copying procedure, whic^ 
is roughly di\nded Into two parts: steps at tiie end user's 
site (the right half of FIG. 4) and steps at the central site 
(tiie left half of FIG. 4). At the end user's site, a tenninal 
station (ag., a personal computer) performs actual data 
processing jobs pertaining to the software copying, 
while several devices located at tiie central site man- 
ages license for the software copying. Those two sites 
are interconnected by a communication, line or a deliv- 
ery channel. 

The terminal station at the end user's site is 
equipped with a CD-ROM drive and an MO drive (botii 
not shown). The CD-ROM 1 1 , serving as a master stor- 
age medium that stores copyrighted software programs, 
is inserted in the CD-ROM drive. On the other hand, the 
MO disc 12 serving as a target storage medium is 
loaded in the MO driva The subject software program in 
tiie CD-ROM 1 1 has a software identifier SIDt\ and ttie 
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MO disc 12 owns rts unique storage medium identifier 
IDk. 

Rrst of all, at the end userls terminal station, the 
manager application program MA in the CD-ROM 1 1 
starts with accepting a request from the end user for 
copying a specific software program. Upon this request, 
the manager application program MA reads out the cor- 
responding software identifier SIDi from the CD-ROM 

1 1 as well as extracting the storage medium identifier 
!Dk from the MO disc 1 2. Those two identifiers are then 
sent to the software license center along with a request 
message containing information necessary for a soft- 
ware license. 

The central -Site receives the above-described 
request from the user and saves the contents of the 
request into a user profile database 13. The received 
software identifier SfDi mid storage medium identifier 
iDk are supplied to a signature processor 1 4, where the 
identifiers SIDi and IDk are conpressed into a certifi- 
cate code CS. In this compression process, a certifica- 
tion key KEYc operates as a private key (or secret key). 
The produced certificate code CS will serve as what is 
refen-ed to as the "signature" in FIG. 1 . The certification 
key KEYc used by the signature processor 14 is then 
directed to an encryption unit 15 to be encrypted with a 
user key KU, thus producing a dphertext EKU(KEYc). 
The certrficate code CS generated by the signature 
processor 14 and the cphertext EKU(KEYc) generated 
by the encryption unit 15 are finally transmitled together 
with the central site identifier IDc to the end user's site 
as a response to the request from the end user. 

At the end user's site, the tern«nal station extracts 
the certificate code CS and ciphertext EKU(KEYc) from 
among the infonration received from the central site 
and writes them into the target MO disc 12. The certifi- 
cate code CS and ciphertext EKU(KEYc) recorded in 
the MO disc 12 are retrieved and sent to the manager 
application program. 

Then, in the temiinal station, a signature verifica- 
tion process starts. Rrst, a decryption unit 16 decodes 
the dphertext EKU(KEYc) using the user key KU and 
extracts the certification key KEYc, which was once 
encrypted at the centra) site. Out of the software kienti- 
tier SIDi retrieved from the CD-ROM 1 1 and the storage 
medium identifier IDk r^ieved from the MO disc 12, a 
signature processor 1 7 generates a certificate code CS' 
for verification at the end user's site. The certrficatton 
key KEYc decrypted by tiie decryption unit 1 6 is used in 
this CS' generation process. T!ien. a comparator 18 
compares the certificate code CS written in the MO disc 

12 and the certificate code CS' generated by tine signa- 
ture processor 17. If ttie corrparison result indicates 
coinddenoe of the two codes CS and CS\ a switch 19 
vwll enable the software program having tiie software 
identifier SIDi to be written into the target MO disc 12 in 
the fonrt of encrypted data. 

The following description will present a typical func- 
tion achieved by the signature processor 14 at tiie cen- 
tral site and the signature processor 1 7 at the ecKl user's 



site. 

FIG. 5 illustrates the sti-ucture of ttie signature proc- 
essor, which consists of an exclusive OR logic 21 and 
an encryption unit 22. The exdusive OR logic 21 per- 

5 forms an exclusive OR (deration on a software identifier 
. SIDi, storage medium kientifier IDk and certificate code 
CS. Tlie encryption unit 22 encrypts tiie output of tiie 
exclusive OR hsgic 21 witii ttie cert'ftcation key KEYc to 
produce the certiffeate code CS. Those two elements 

10 21 and 22 tiius constitutes a hash function operator. 

In a block-by-block nnanner. the encryption unit 22 
encrypts the software identifier SIDi and storage 
medium idaitifier IDk with the certification key KEYc, 
The encrypted output data is fed back to the input of the 

15 exdusive OR logic 21 and directed to tiie exclusive OR 
operation tiie next blodc data. The output of the 
exclusive OR logic 21 is then encrypted by the encryp- 
tion unit 22 again. The above qserations are rq3eated 
until the final block is entered, and the result of this 

20 cyclic computation will come out of tlie encryption unit 
22 as a certificate code CS when the encryption of tiie 
final block is finished. 

The licensed software program is copied to the MO 
disc 12 in the way descrtoed above, but the end user 

25 cannot run it as is. because the program is still 
encrypted. The following description will explain how it 
will be executed. 

FIG. 6 shows a procedure of executing a duplk;ated 
software program. The MO disc 12 contains tiie certiR- 

30 cate code CS. dphertext EKU(KEYc), storage medium 
identifier IDk, and software identifier SIDi, as well as 
boring the duplicated software in the form of encrypted 
data EKcl(DATA), This encrypted data EKdfDATA) was 
encrypted witii a key Kd before tiie software was 

35 stamped to the CD-ROM, and tiie encryption key Kd is 
under tiie managennent of the manager application pro- 
gram. 

Tlie temiinal station at the end user's site first 
retrieves from ttie MO disc 12 ttie certificate code CS, 

40 dphert^ EKU(KEYc). storage medium identifier IDk, 
and software Identifier SIDi, The decryption unit 16 
decrypts the dphertext EKU(KEYc) witii the user key 
Ku, thereby ertracting the certification key KEYc. Then 
the signature processor 17 generates another certifi- 

45 cate code CS* from tiie software identifier SIDi and stor- 
age medium identifier IDk retileved from tiie MO disc 
12, using the certification key KEYc decrypted by tiie 
decryption unit 16. Subsequentiy, tiie comparator 18 
compares the certif k:ate codes CS and CS'. If the com- 

50 parison indicates coinddence of the two codes CS and 
CS'. the switch 19 will allow an encrypted data file 
EKd(DATA) contffl'ning the encrypted software program 
to pass through to a decryption unit 25. The decryption 
unit 25 decrypts the encrypted data file EKd(DATA) 

5$ using the key Kd tiiat is owned by the manager applica- 
tion program, thus restoring the original plaintext data 
file DATA. The contents of tiiis decrypted data file DATA 
can be executed by the central processing unit (CPU) 
after being loaded to the memory, both of which are part 
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of a CPU/memory unit 26 in the terminal station. 

Next, a second embodiment of the present inven- 
tion will be described below with reference to FIGS. 7 to 
10. In the second embodiment, each software proQram 
recorded in a CD-ROM has a software identifier DID 
uniquely assigned thereto, and its corresponding data 
file Data is stored as an encrypted data file EKd(Data), 
This encrypted data file EKd(DATA) has been created 
with a master medium conversion key Ka geno'ated 
from the software identifier DID and a master key KM, 
which is managed at a software license center. The soft- 
ware license center is in charge of licensing of the right 
to copy their commercial software products. Regarding 
the target storage media, the user's MO disc has a 
serial number serAnng as a storage medium identifier 
Mid. 

FIG. 7 rs afbwchaii sfiowing a software dupGcation 
process performed under the above assumption by the 
software copying system of the second embodiment 

To obtain a copy of a software program distrtouted 
in a CD-ROM. it is necessary to go through the following 
seven steps: 

[Sill The storage medium identifier Mid recorded 
in the target MO dsc and the software identifier 
D/D of the subject software program in the CD- 
ROM are sent from flie end user's site to the soft- 
ware license center, which controls the license to 
copy the software products. 
[812] At the software license center, it is tested 
whether the software identifier DID is registered 
therein or not 

[S13] The storage medium identifier Mid and soft- 
ware identifier DID are encrypted with the master 
key KM managed rn the software license center, 
thus generating a storage medium conversion key 
Ku and master medium conversion key Ka. respec- 
tively. 

[S14] A ciphertext EMtd(Ku,Ka) is generated by 
encrypting those storage medium and master 
medium conversion keys Ku and Ka using the stor* 
age medium identifier Mid. The ciphertext 
EMid(KutKa) is sent to the end user's site as a 
response message to the request. 
[Siq The end user's a'te obtains the storage 
medium conversion key Ku and master medium 
conversion key Ka by decrypting the received 
ciphertext EMid(Ku,Ka) with the storage medium 
identifier Mid, while storing a dphertext EMid(Ku), 
i.e.. MO disc-related part of the ciphertext 
EMid(Ku,Ka), without attempting decryption. 
[Si 6] Wtih the master medium conversion key Ka 
obtained In step 815, the encrypted data file 
EKd(Data) in the CD-ROM which coaesponds to 
the software identifier DID is decrypted to restore 
the original plaintext data file Data, 
[SIT] The plaintext data file Data is encrypted 
again with the storage medium conversion key Ku 
obtained in step S15, and the encrypted data file is 



stored into the MO disc, thus finalizing the software 
duplication process. 

The above-described software duplication proce- 

5 dure wiD be discussed in more detail below. In the sec- 
ond embodiment of the present invention, the 
procedure starts at the end user's site with sending a 
request to the software license center, which part of the 
procedure consists of only two thi ngs as follows. One is 

10 to read out the storage medium identifier Mid of the tar- 
get MO disc and the software identifier DID of the sub- 
ject software stored in the CD-ROM, and the other is to 
send these Mentifiers Mid and DID to the software 
license center. The following description skips those two 

15 Steps and will begin with the steps executed by the soft- 
ware license center which has received the above 
request from the end user's site. 

FIG. 8 explains the procedure executed at the soft- 
ware license center. Upon receipt of the two identifiers, 

20 Mid and DID, from the end user's site through a com- 
munications line, the software license center fonnards 
the storage medium identifier Mid to an encryption unit 
31 having the master key KM under the control of the 
center, as well as supplying the software identifier DID 

25 to a comparator 32. The encrypt'ion unit 31 encrypts the 
storage medium identifier Mid using the master key KM 
to produce a storage medium conversion key Ku. The 
comparator 32, on the other hand, searches a contents 
identifi^file33, comparing each entry with the received 

30 software identifier DID to verify its validity. If the 
received software identifier DID coincides with the one 
registered in the contents identifier file 33, the compara- 
tor 32 closes a switch 34. thus allowing the software 
identifier DID to enter to an encryption unit 35 hmng 

35 the master key KM, The encryption unit 35 encrypts the 
software identifier DID with the master key KM to create 
a master medium conversion key Ka. The storage 
medium conversion key Ku produced by the encryption 
unit 31 and the master medium conversion key Ka pro- 

40 duced by the encryption unit 35 are then entered to an 
encryption unit 36 for further encryption using the stor- 
age medium identifier Mid. A ciphertext EMid(Ku,Ka) 
produced by the encryption unit 36 is tiansferred to the 
requesting end user through the communications line. 

45 Upon completion of the above proces^ng steps, a 
request for billing is issued to the user profile database 
37 and tiie cost is charged to tiie requesting end user. 

FIG. 9 explains tiie procedure at the end user's site 
after the at}ove-d ascribed process is finished at the soft- 

so ware license center. The ciphertext EMid(Ku,Ka) 
received from the software license center is appfied to a 
decryption unit 51 , while a dphertext EMid(Ku) as part 
of tfie received ciphertext EMid(Ku,Ka) is vimtlen into a 
predetennined region 41 in the target MO disc 40. The 

55 decryption unit 51 decrypts the dphertext EMid(Ku,Ka) 
using the storage medium identifier Mid extracted from 
tiie MO disc 40, tiius restoring tiie original storage 
medium conversion key Ku and master medium conver- 
sion key Ka. This restored master medium conversion 
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key Ka is then entered to a decryption unit 52 as its 
decryption key, while the restored storage medium con- 
version key Ku is entered to an encryption urft 53 as its 
encryption key. The decryption unit 52 retrieves the 
encrypted data file EKs(Data) that corresponds to the 5 
software identifier DID In the CD-ROM 60 and decrypts 
it with the master medium conversion key Ka, thus 
restoring the original plaintext data file Data. This data 
file Data is enacted again by die encryption unit 53 
with the storage medium conversion key Ku, and the w 
resultant dphertext EKu(Data) is written into the target 
MO disc 40. 

In the way described above, the dphertext 
EKu(Data) is written into the MO disc 40 through the 
process using two conversion keys derived from a is 
unk)ue identifier recorded in tiie MO disc 40 and a mas- 
ter key under the control of the software license center. 
Next a procedure to execute this encrypted data file 
EKu(Data) will be described below. 

FIG. 1 0 illustrates a procedure of executing the soft- 20 
ware program that is diplicated as a data file in the MO 
disc 40. The dphertext EMfd(Ku) is stored in a section 
41 as part of the rewritable region in the MO disc 40, 
while the storage medium identifier Mid is recorded in a 
non-rewritable region 42. The encrypted data file 25 
EKu(Data) is stored in a section in the remaining rewri- 
table region. When the program in the encrypted data 
file EKju(Data) is called up for execution, the storage 
medium klentifier M/tf and dphertext EMid(Ku) are 
retrieved from the MO disc 40 and entered to a decryp- 30 
tion unit 54. Using the storage medium identifier Mid as 
the decryption key. the decryption unit 54 decrypts the 
dphertext EMid(Ku)\o restore the storage medium con- 
version k^ Ku. Another decryption unit 65 then 
decrypts the encrypted data file EKu(Data) retrieved 35 
from the MO disc 40, using the storage medium conver- 
sion key Ku as the decryption key The resultant plain- 
text data file Data will be executed after being loaded to 
the main memory of a personal computer that is work- 
ing as the end users terminal station. 40 

The above discussion will t>e summarized as fol- 
lows. According to the present Invention, the software 
copying system comprises signature generating means, 
disposed at the central site, for generating a signature 
from information that identifies the target storage 4S 
medium and subject data stored in tiie master medium 
The system also comprises, at the end user^s site, sig- 
nature writing means for writing the signature generated 
by tiie signature generating means into the target stor- 
age medium, signature generating/comparing means so 
for comparing a signature that is locally generated at the 
end user's site witii the signature written in the target 
storage medlun, and data copying means for copying 
the subject program to the target storage medium 
according to the result of comparison. Therefore, the ss 
central site only has to issue a signature associated with 
the klentifier of the target storage medium, and there is 
no need to manage any license-specific information in 
dose liaison with factories of the storage medium man- 



ufadurers* This also eliminates the stock confol in the 
manufocturers and retailers for tiie storage media to be 
used in software copying. 

The foregoing is considered as illustrative only of 
the principles of the present invention. Further, since 
numerous nrKxJifications and changes will readily occur 
to those skilled in the art, it is not desired to limit the 
invention to the exact constmction and applications 
shown and described, and accordingly, all suitable mod- 
ifications and equivalents may be regarded as falling 
vnthtn the scope of the invention in the appended claims 
and their equivalents. 

Claims 

1. A software copying system for duplicating software 
recorded in a master storage medium (1) to a target 
storage medium (3) in a legitimate ntanner 
achieved through communications between an end 
user's site that is requesting a license of copying 
the software and a central site (5) that manages tiie 
license, the software copying system corrprising: 

contents identifier reading means (2) for read- 
ing out a first identifier (SIDi) from the master 
storage mectium (1). said first identifiers (SIDi) 
being uniquely assigned to the software pro- 
gram recorded in tfie master storage medium 

(1) : 

storage medium klentifier reading means (4) 
for reading out a second identifier (IDk) from 
the target storage medium (3). the second 
identifier (IDk) being unquely assigned to tiie 
target storage medium (3); 
signature generating means (6), disposed at 
the central site (5). for generating a first signa- 
ture from tiie first identifier (SIDQ read out by 
saki contents identifier reading means (2) and 
the second identifier (IDk) read out by said stor- 
age medium identifier reading means (4), tiie 
first signature serving as a certificate of a 
license to copy the software program; 
signature writing means (7) for writing the first 
signature generated by said signature generat- 
ing means (6) into the target storage medium 

(3) : 

signature generating/comparing means (8) for 
generating a second signature, for a verifica- 
tion purpose, from tiie first identifier (SIDi) read 
out by sakj contents identifier reading means 

(2) and the second identifier (IDk) read out by 
said storage medium identifier reading means 

(4) , and comparing tiie first signature stored in 
the target storage medium (3) with the second 
signature: and 

data copying means (9) for retrieving the soft- 
ware program out of the master storage 
mecfium (1) and writing tiie software program 
into the target storage medium (3), when the 
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first and second identifiers turned out to be 
identical as a result of the comparison per- 
formed t)y said signature generating/compar- 
ing means (8). 

5 

2. A software copying system according to daim 1, 
wherein said signature generating means (6) com- 
prises 

signature processing means (14) for encrypting io 
tine first identifier (SIDi) read by said contents 
kjentifier reading means (2) and the second 
Identifier (!Dk) read by said storage medium 
Identifier reading means (4) using a certifica- 
tion key (KEYc) managed at ttie centra! site (5). is 
to produce a certificate code (CS) that sen^s 
as the first ^gnature, and 
encrypting means (1 5) for encrypting the certi- 
fication key (KEYc) using a user key (KU) reg- 
istered at the central site (5), and sending the 20 
encrypted certtfication key (EKU (KEYc)) for 
use in said signature generating/comparing 
means (8) to generate the second signature. 

3. A software copying system according to claim 2, 25 
wherein said signature generating/comparing 
means (8) corviprises 

deaypting means (16) for decrypting the 
encrypted certification key (EKU(KEYc)) using 30 
tine user key (KU), which is registered at the 
central site (5). to produce a decrypted certifi* 
cation hey. 

certificate code generating means (17) for gen- 
erating anotiier certificate code (CS*) for verifi- 35 
catioa which will serve as the second 
signature, by encrypting the first kJentifier 
(SIDi) read by saki contents identifier reading 
means (2) and ttie second identifier (IDk) read 
by said storage medium identifier reading 40 
means (4) using the decrypted certification key 
(KEYc), and 

comparing means (1 8) for comparing the certif- 
icate code (CS') for verification generated by 
said certificate code generating means (17) 45 
with the certiftcate code (CS) stored as tiie first 
signature in the target storage medium (3). 

4. A software copying method for duplicating software 
recorded in a master storage medium (1) to a target so 
storage medium (3) in a legitimate manner 
achieved through connmunications between an end 
user's site tiiat is requesting a license to copy tiie 
software and a central site (5) tiiat manages the 
license, tiie software copying method comprising 55 
the steps of: 

sending from the end user's site to the central 
site a storage medium identifier (IDk) that is 



urvquely assigned to the target storage 
medium (3) and a contents identifier (SIDi) that 
is uniquely assigned to a subject data file, 
together witii a message requesting a software 
license; 

generating at the central site (5) a first certifi- 
cate code (CS) from the storage medium iden- 
tifier (IDk) and tiie contents identifier (SIDi) 
received from tiie end user ^e, through a sig- 
nature generating process using a certification 
key (KEYc) that is managed at tiie central site 
(5): 

generating at ttie central ^e (5) an encrypted 
certification key (EKU(KEYc)) by encrypting 
the certification key (KEYc) using a user key 
(KU); 

sending from tiie central site (5) to tiie end 
user's site tiie first certificate code (CS) and tire 
encrypted certification key (EKU(KEYc)); 
writir^ at the end user's site tiie first certifrcate 
code (CS) and tiie encrypted certification key 
(EKU(KEYc)) received from the central site (5) 
into the target storage medium (3); 
obtaining at tiie end user's site a decr)^ted cer- 
tification key (KEYc) by decrypting tiie 
encrypted certification key (EKU(KEYc)), 
which is stored in the target storage medium 
(3), using the user key (KU); 
generating at tiie end user's site a second cer- 
tification code (CS') for a verification purpose 
by applying a signature generating process 
using the decrypted certification key (KEYc) to 
tiie storage medium identifier (IDk) and the 
contents identifier (SIDi); 
comparing tiie first certificate code (CS) stored 
in the target storage medium (3) wttti tiie sec- 
ond certificate code (CS") that is generated at 
tiie end user's site; and 

reading out the subject data file stored in the 
master borage medium (1) and writing the sub- 
ject data file into the target storage medium (3) 
if tiie first and second certificate codes 
(CSiCS") coindde with each other. 

A software copying system for duplicating software 
recorded in a master storage medium (60) to a tar- 
get storage medum (40) in a legitimate manner 
achieved through communications between an end 
user's site that is requesting a license to copy the 
software and a cenb-al site (5) that manages the 
license, the software copying system conrprising: 

contents identifier reading means (2) for read- 
ing a first kientifler (DID) uniquely assigned to a 
software product, which are both recorded in 
the master storage medium (60): 
storage medium Identifier reading means (4) 
for reading a second Identifier (Mid) unk]uely 
assigned to the target storage medium (40) 
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and recorded therein; 

conversion key generating means (31, 35, 36), 
disposed at the central site (5), for generating a 
storage medium conversion key (Ku) from the 
second Identifier (Mid) read by said contents s 
identifier reading means (2), generating a mas- 
ter medium conversion key (Ka) from the first 
identifier (DID) read by said storage medium 
identifier reading means (4), and generating an 
encrypted storage medium conversion key to 
(EMid(Ku)) and an encrpyted master medium 
conversion key (EMId(I^)) by respectively 
encrypting the storage medium conversion key 
(Ku) and the nr^ster medium conversion key 
(Ka) using the seond identifier (Mid); is 
conversion key writing means for writing the 
encrypted storage medium conversion key 
(EMid(Ku)) generated by said conversion key 
generating means (31 , 36) into the target stor- 
age medium (40); 20 
conversion key decrypting means (51) for gen- 
erating a dacr^ted storage medium conver- 
sion key (Ku) and a decrypted master medium 
conversion key (Ka) by respectively decrypting, 
using the second identifier (Mid) read by said ss 
storage medium identifier means (4), the 
encrypted storage medium conversion key 
(EMid(Ku)) and the encrypted master medium 
conversion key (EMid(Ka)) generated by said 
conversion key generating means (31 , 35, 36); so 
data decryi^ing means (52) for reading out the 
target data file (EKa(Data)) recorded In tiie 
master storage nrtedium (60) and produdng a 
plaintext data file (Data) by decrypting the tar- 
get c^ta file (EKa(Data)) using the deaypted 35 
master medium conversion key (Ka) generated 
by said conversion key decrypting means (51); 
and 

data writing means (53) for producing an 
encrypted data file (EKu(Data)) by encrypting 40 
the plaintext data file (Data) using the 
decrypted storage medium conversion key (Ku) 
generated by said conversion key decrypting 
means (51) and writing tiie encrypted data file 
(EKu(Data)) into tiie target storage medium 45 
(40). 

A software copying system according to daim 5. 
wherein said conversion key generating means (31 , 
35. 36) comprises so 

first encrypting means (31) for generating the 
storage medium conversion key (Ku) by 
encrypting the second identifier (Mid) read out 
by said contents identifier reading means (2), ss 
using a master key (KM) that Is managed at the 
central site (5); 

second encrypting means (35) for producing 
the master medium conversion key (Ka) by 



encrypting the first identifier (DID) read out by 
said storage medium identifier reading means 
(4), using the master key (Kf^; and 
tttrd encrypting means (36) for produdng tiie 
encrypted storage medium conversion key 
(EMid(Ku)) and the encrypted master medium 
conversion k^ (EMid(Ka)) by encrypting the 
storage medium conversion key (Ku) and tiie 
master medium conversion key (Ka) using tiie 
second identifier (Mid) read out by said con- 
tents identifia- reading means (2). 

7. A software copying system lor duplicating a subject 
data file recorded in a master storage medium (60) 
to a target storage medium (40), tiie subject data 
file being encrypted with a master medium conver- 
sion Key (Ka) produced from a contents identifier 
(DID) to Identify software products and a master 
key (Kf^ managed at a central site (5) which deals 
licenses to copy software products, the software 
copying system comprising tiie steps of: 

sending from tiie end user^s site to the central 
site (5) a contents identifier (DID) that is 
uniquely assigned to the subject data file and a 
storage medium identifier (Mid) that is uniquely 
assigned to the target storage medium (40): 
producing at the central site (5) a master 
medium conversion key (Ka) and a storage 
medium conversion key (Ku) by respectively 
encrypting tiie contents identifier (DID) and the 
storage medium identifier (Mid) using a master 
key (KM) managed at tiie certtral site (5); 
generating an encrypted storage medium con- 
veraon key (EMid(Ku)) and an encrypted mas- 
ter medium conversion key (EMid(Ka)) by 
respectively encrypting tiie storage medium 
conversion key (Ku) and tiie nraster medium 
conversion key (Ka) using tiie storage medium 
identifier (Mid); 

sending from the central site (5) to tiie end 
user's site tiie encrypted m^er medium con- 
version key (EMid(Ka)) and the encrypted stor- 
age medium conversion key (EMId(Ku)); 
writing the encrypted storage medium conver- 
sion key (EMid(Ku)) Into the target storage 
mecfium (60); 

generating a decrypted storage medium con- 
version key (Ku) and a decrypted master 
medium conversion key (Ka) respectively 
decrypting the encrypted storage medium con- 
version key (EMid(Ku)) and the encrypted mas- 
ter medium conversion key (EMid(Ka)) using 
the storage medium klentifter (Mid): 
decrypting the subject data file (EKa(Data)) 
recorded in tiie master storage medium (40) to 
produce a plaintext data file (Data) by decrypt- 
ing tiie target data file (EKa(Data)) using tiie 
decrypted master medium conversion key (Ka); 
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producing an enaypted data file (EKu(Data)) 
by encrypting the plaintext data file (Data) 
using the decrypted storage medium conver- 
sion key (Ku); and 

wrrttng the encrypted data file (EI^(Data)) into 5 
the target storage medium (60), 
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